$ rpki-client -vvf rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft File: khdBhFmoypIuDWajy6pAZyDLSJA.mft (raw, json) Hash identifier: BO+Uyr0UUG1l+3ANPSWhNw61aExcaL2QBXWlNloKk5A= Subject key identifier: 75:65:83:02:6D:73:DE:CC:9B:B5:74:9C:FC:E2:43:6E:BE:CF:4A:7C Authority key identifier: 92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 Certificate issuer: /CN=A9137B39/serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Certificate serial: 03C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft Manifest number: 03BF Signing time: Wed 13 Aug 2025 01:15:54 +0000 Manifest this update: Wed 13 Aug 2025 01:15:54 +0000 Manifest next update: Wed 20 Aug 2025 01:15:54 +0000 Files and hashes: 1: khdBhFmoypIuDWajy6pAZyDLSJA.crl (hash: FuKUGtqqY4MCgyoZ/VfS4pmSwaMj3GLCi3tfeBe0Bjk=) 2: EA8F3FAE6F8611F0BA25F244C4F9AE02.roa (hash: YTSXljO/yVhvQBHJezR7ssdww+GXbQn8v2AKybIkw9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 01:08:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 968 (0x3c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137B39, serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Validity Not Before: Aug 13 01:15:54 2025 GMT Not After : Aug 20 01:15:54 2025 GMT Subject: CN=689be74a-a4cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0b:43:ff:7d:82:cb:f9:93:7a:88:df:0e:40: 76:e8:42:e0:d3:b2:15:1d:a6:59:04:bf:98:ff:9e: cf:71:3d:04:a3:ea:a5:a2:91:80:d9:df:4f:6a:0b: 23:84:83:6d:9f:e6:cb:6a:86:b7:f0:f3:94:5c:c8: 8b:5e:a8:93:ff:c3:3a:31:b1:49:f5:26:88:62:cd: d7:9a:ec:15:67:2b:20:1d:a7:fd:a4:25:c3:27:05: 24:34:1c:6a:a7:e4:c9:ee:5a:d9:0f:d2:22:60:1f: 44:30:88:de:d6:f7:54:63:2d:36:4f:17:6e:22:48: d0:8c:5a:c8:7f:d4:17:5c:e4:48:9d:55:e9:8f:23: d8:e8:3c:86:2d:89:05:2b:6b:3f:2e:d4:2c:4a:bb: 6c:40:f1:5c:46:f7:c1:79:c7:60:e1:65:83:34:a2: 28:5f:9a:1e:ca:ac:f4:7e:bb:fd:5e:96:b8:88:7b: 0b:ef:1c:52:52:51:67:c1:bb:41:72:7e:a2:96:ef: 1e:28:66:34:72:20:24:74:ba:6c:e3:d7:9a:39:64: 27:07:23:0e:c5:1e:60:00:b1:1c:50:02:30:f2:3a: 88:f5:f9:85:0c:2d:68:56:ea:f5:c5:0b:ec:7d:9e: 17:28:df:6b:66:79:f8:17:ff:74:3b:49:79:4d:44: ef:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:65:83:02:6D:73:DE:CC:9B:B5:74:9C:FC:E2:43:6E:BE:CF:4A:7C X509v3 Authority Key Identifier: keyid:92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:46:8b:da:66:ed:07:e2:19:a4:cc:e8:00:63:e4:a5:8b:e7: 46:ee:7c:b6:6e:f8:44:3a:9f:02:78:62:31:c5:c8:25:ed:ba: cb:df:91:ce:46:22:68:c0:39:be:2e:98:fe:18:31:16:40:04: b4:f9:ec:29:11:ae:02:ff:95:a4:39:08:b7:48:61:bc:67:6b: 28:a6:1e:02:0a:5a:e6:02:98:f9:e5:92:c5:08:36:3c:35:1d: 61:b7:a9:48:2d:d1:e8:37:62:66:6e:3c:9f:1f:69:56:58:8b: b3:90:c4:b6:75:92:1e:0a:b7:14:6c:4f:33:17:c9:96:d8:e9: e5:d1:14:95:22:33:25:39:20:b7:99:1a:f7:dd:27:34:c5:eb: cf:d6:40:ae:98:19:09:42:79:f1:f9:d4:49:bd:81:7b:ec:85: e2:3a:4e:31:bb:64:8a:cb:e0:7d:4d:64:a3:c0:d4:c5:c8:74: 14:bd:a6:b1:08:ca:94:0d:3d:a6:2f:3d:a7:ea:7a:c2:77:a2: 3a:1a:ce:51:fc:38:52:56:fc:5d:02:c2:81:2a:80:57:7d:ea: 93:f0:aa:97:8d:77:72:4d:a3:b6:8f:77:c0:bc:07:0e:08:8b: 1e:50:5d:9a:84:9b:7d:02:c2:8d:22:18:50:db:7e:68:ea:ff: c8:55:8b:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdCMzkxMTAvBgNVBAUTKDkyMTc0MTg0NTlBOENBOTIyRTBENjZBM0NCQUE0MDY3 MjBDQjQ4OTAwHhcNMjUwODEzMDExNTU0WhcNMjUwODIwMDExNTU0WjAYMRYwFAYD VQQDEw02ODliZTc0YS1hNGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1AtD/32Cy/mTeojfDkB26ELg07IVHaZZBL+Y/57PcT0Eo+qlopGA2d9Pagsj hINtn+bLaoa38POUXMiLXqiT/8M6MbFJ9SaIYs3XmuwVZysgHaf9pCXDJwUkNBxq p+TJ7lrZD9IiYB9EMIje1vdUYy02TxduIkjQjFrIf9QXXORInVXpjyPY6DyGLYkF K2s/LtQsSrtsQPFcRvfBecdg4WWDNKIoX5oeyqz0frv9Xpa4iHsL7xxSUlFnwbtB cn6ilu8eKGY0ciAkdLps49eaOWQnByMOxR5gALEcUAIw8jqI9fmFDC1oVur1xQvs fZ4XKN9rZnn4F/90O0l5TUTvywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVlgwJt c97Mm7V0nPziQ26+z0p8MB8GA1UdIwQYMBaAFJIXQYRZqMqSLg1mo8uqQGcgy0iQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0IzOS9BNzU5OUQ3QUEw MzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lwSXVEV2FqeTZwQVp5RExT SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toZEJoRm1veXBJdURXYWp5NnBBWnlETFNKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0IzOS9BNzU5OUQ3QUEwMzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lw SXVEV2FqeTZwQVp5RExTSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7RovaZu0H4hmkzOgAY+Sli+dG7ny2bvhEOp8CeGIxxcgl7brL35HO RiJowDm+Lpj+GDEWQAS0+ewpEa4C/5WkOQi3SGG8Z2soph4CClrmApj55ZLFCDY8 NR1ht6lILdHoN2JmbjyfH2lWWIuzkMS2dZIeCrcUbE8zF8mW2Onl0RSVIjMlOSC3 mRr33Sc0xevP1kCumBkJQnnx+dRJvYF77IXiOk4xu2SKy+B9TWSjwNTFyHQUvaax CMqUDT2mLz2n6nrCd6I6Gs5R/DhSVvxdAsKBKoBXfeqT8KqXjXdyTaO2j3fAvAcO CIseUF2ahJt9AsKNIhhQ235o6v/IVYvC -----END CERTIFICATE-----Generated at Wed Aug 13 02:47:36 2025 by rpki-client